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DETAILED ACTION 

Response to Amendment 

1. This action is in response to the request for reconsideration filed September 2, 2010. 

2. Claims 1, and 35-40 have been amended. 

3. Applicant's arguments, with respect to the claims, have been considered but are moot in 
view of the new ground(s) of rejection. 

Claim Objections 

4. Claim 3 is objected to under 37 CFR 1 .75(c), as being of improper dependent form for 
failing to further limit the subject matter of a previous claim. Applicant is required to cancel the 
claim(s), or amend the claim(s) to place the claim(s) in proper dependent form, or rewrite the 
claim(s) in independent form. Claim 3 recites "wherein the seed is generated, by at least one of 
the seed generation client and the seed generation server, as a function of a combination of the 
second string and one or more of: (i) the first string, and (ii) identifying information associated 
with the seed generation server. " However, claim 3 is dependent upon claim 1, which recites 
"generating the seed as a function of at least the first string and the second string." One 
embodiment of claim 3 could comprise of generating a seed as a function of a combination of a 
second string and identifying information associated with the seed generation server. Another 
embodiment of claim 3 could comprise of generating a seed as a function of a combination of a 
second string and a first string. The last embodiment of claim 3 could comprise of generating a 
seed as a function of a combination of a second string, a first string, and identifying information 
associated with the seed generation server. The first two embodiments do not appear to further 
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limit the subject matter of parent claim 1. Applicant is respectfully requested to clarify if the 
seed is always generated as a function of at least the first string, and second string, wherein one 
embodiment also includes generating the seed as a function of the first string, second string, and 
identifying information associated with the seed generation server. 

Response to Arguments 

5. Applicant's arguments, see page 6, filed September 2, 2010, with respect to the rejection 
of claim 36 under 35 U.S.C. § 101 have been fully considered and are persuasive. The rejection 
of the claim has been withdrawn. 

6. Applicant's arguments, see page 9, filed September 2, 2010, with respect to the objection 
of claim 3 have been fully considered and but are not persuasive. The objection is maintained. 
Examiner respectfully disagrees with applicant's assertion that "claim 3 clearly includes every 
limitation of claim 1, and therefore is a proper dependent claim." In particular, dependent claim 3 
recites generating the seed "as a function of a combination of the second string and one or more 
of: (i) the first string, and (ii) identifying information associated with the seed generation server." 
The claim language "one or more of gives one possible interpretation of claim 3 as generating 
the seed as a function of a combination of the second string and identifying information 
associated with the seed generation server with the exclusion of a first string as required by the 
independent claim 1 ("generating the seed as a function of at least the first string and the second 
string"). 
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7. Applicant's arguments with respect to claims 1, and 35-40 have been considered but are 
moot in view of the new ground(s) of rejection. 

Claim Rejections - 35 USC § 102 

8. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or 
on sale in this country, more than one year prior to the date of application for patent in the United States. 

9. Claims 1-2, 6, 14, 16, 19, 37, and 39 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Menezes et al. ("Handbook of Applied Cryptography. Chapter 12. Key 
Establishment Protocols' ', 1997) (hereinafter Menezes) . 

As per claim 1, Menezes teaches a method for secure generation of a seed for use in 
performing one or more cryptographic operations, the method comprising the steps of: 

a seed generation server providing a first string to a seed generation client (page 10, key 
transport with challenge-response: A sends message 2 to B, which includes r A ; A corresponds to 
a server, as it responds to the request in message 1 by B, which corresponds to the client, with 
key material Xp); 

the seed generation client generating a second string responsive to receipt of the first 
string, encrypting the second string utilizing a key, and sending the encrypted second string to 
the seed generation server (page 10, B responds with message 3 to A which includes encrypted 

r B ); 
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the seed generation client generating the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties); and 

the seed generation server decrypting the encrypted second string and independently 
generating the seed as a function of at least the first string and the second string (page 9, use key 
K shared a priori by two parties A and B to encrypt messages; page 10, r A and r B serve as keying 
material; the session key Wis a function of inputs from both parties; thus, A must decrypt the 
message containing r B to derive the session key). 

As per claim 37, Menezes teaches a method for secure generation of a seed for use in 
performing one or more cryptographic operations, the method being implemented in a seed 
generation client, the method comprising the steps of: 

receiving a first string from a seed generation server (page 10, key transport with 
challenge-response: B receives message 2 from A which includes r A ; A corresponds to a server, 
as it responds to the request in message 1 by B, which corresponds to the client, with key 
material ta); 

generating a second string responsive to receipt of the first string, encrypting the second 
string utilizing a key, and sending the encrypted second string to the seed generation server (page 
10, B responds with message 3 to A which includes encrypted r B ); and 

generating the seed as a function of at least the first string and the second string (page 10, 
r A and r B serve as keying material; the session key Wis a function of inputs from both parties); 
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wherein the first string and the second string are configured so as to permit the seed 
generation server to independently generate the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties; page 2, one type of key establishment technique is key agreement, 
where a shared secret is derived by two parties as a function of information contributed by or 
associated with each of these). 

As per claim 39, Menezes teaches a method for secure generation of a seed for use in 
performing one or more cryptographic operations, the method being implemented in a seed 
generation server, the method comprising the steps of: 

providing a first string to a seed generation client (page 10, key transport with challenge- 
response: A sends message 2 to B, which includes r A ; A corresponds to a server, as it responds 
to the request in message 1 by B, which corresponds to the client, with key material ta); 

receiving from the seed generation client a second string generated responsive to receipt 
of the first string and encrypted utilizing a key (page 10, A receives message 3 fromB, which 
includes encrypted r B ); 

decrypting the encrypted second string ; and 

generating the seed as a function of at least the first string and the second string (page 9, 
use key K shared a priori by two parties A and B to encrypt messages; page 10, r A and r B serve 
as keying material; the session key Wis a function of inputs from both parties; thus, A must 
decrypt the message containing r B to derive the session key); 
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wherein the first string and the second string are configured so as to permit the seed 
generation client to independently generate the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties; page 2, one type of key establishment technique is key agreement, 
where a shared secret is derived by two parties as a function of information contributed by or 
associated with each of these). 

As per claim 2, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the seed comprises a symmetric key (page 10, the 
session key Wis a function of inputs from both parties; page 2, one type of key establishment 
technique is key agreement, where a shared secret is derived by two parties as a function of 
information contributed by or associated with each of these). 

As per claim 6, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the key utilized by the seed generation client to encrypt 
the second string comprises a secret key shared by the seed generation client and the seed 
generation server (page 10, A <— B: £k(rB, n B , n A , A*); page 9, 12.3.1, K is a symmetric key 
shared a priori by A and B). 



As per claim 14, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the seed generation client and the seed generation server 
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communicate with one another through at least one intermediary processing device (page 7, it is 
typically assumed that protocol messages are transmitted over unprotected networks). 

As per claim 16, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the seed generation server initiates the seed generation 
process responsive to receipt of a request initiated by the seed generation client (page 10, B first 
sends A a first message containing a nonce n b ). 

As per claim 19, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the second string comprises a combination of at least 
two component strings, including at least a first component generated in the seed generation 
client by interaction with the seed generation server and a second component previously stored in 
the seed generation client (page 10, A <— B: E K (r B , n B , nA, A^), r a is generated by interaction 
with B as the corresponding keying material, and n B is a second component previously stored). 

Claim Rejections - 35 USC § 103 

10. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

11. Claims 3-5, and 8 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Menezes. 
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As per claim 3, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the seed is generated, by at least one of the seed 
generation client and the seed generation server, as a function of a combination of the second 
string and one or more of: (i) the first string, and (ii) identifying information associated with the 
seed generation server (page 20, Needham-Schroeder public-key protocol; A sends to B a 
message encrypted by B 's public-key; B returns to A another message encrypted by A 's public 
key; the session key is computed as f(kl,k2)). It would have been obvious for one of ordinary 
skill in the art at the time of the invention to modify the key establishment protocol taught by 
Menezes such that the seed is generated as a function of a combination of the second string, first 
string, and identifying information associated with the seed generation server, as Menezes 
teaches that doing so provides entity authentication (page 19, authentication assurances can be 
provided...). 

As per claim 4, Menezes teaches the method of claim 3 as applied above. Menezes 
additionally teaches the method wherein the identifying information associated with the seed 
generation server comprises a public key of the seed generation server (page 20, Needham- 
Schroeder public-key protocol; B returns to A another message 2 encrypted byA's public key). 

As per claim 5, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the key utilized by the seed generation client to encrypt 
the second string comprises a public key of the seed generation server (page 20, Needham- 
Schroeder public-£ey protocol; B returns to A another message 2 encrypted by A 's public key). It 
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would have been obvious for one of ordinary skill in the art at the time of the invention to 
modify the key establishment protocol taught by Menezes such that the second string is 
encrypted by the seed generation server, as Menezes teaches that doing so provides entity 
authentication (page 19, authentication assurances can be provided...). 

As per claim 8, Menezes teaches the method of claim 1 as applied above. Menezes 
additionally teaches the method wherein the seed generation server comprises or is otherwise 
associated with an authentication entity (page 5, 12.10, key establishment protocols which 
involve entity authentication). It would have been obvious for one of ordinary skill in the art at 
the time of the invention to modify Menezes for the server to comprise an authentication entity, 
as Menezes teaches that entity authentication in combination with key establishment provides for 
a protocol which can be constructed to guarantee that the party whose identity is thereby 
corroborated is the same party with which the key is established (page 5, 12.10). 

12. Claims 13, 35, 36, 38, and 40 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Menezes, in view of OFFICIAL NOTICE. 

As per claim 13, Menezes teaches the method of claim 1 as applied above. Menezes does 
not explicitly teach the method wherein the seed generation client is associated with a first 
processing device and the seed generation server is associated with a second processing device . 
However, Examiner provides OFFICIAL NOTICE that it would have been well known and 
expected in the art at the time of the invention for a client and a server to be implemented on two 
different processing devices. It would have been obvious for one of ordinary skill in the art at the 
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time of the invention to modify Menezes such that the two parties are implemented on two 
different processing devices, as all of the claimed elements were known in the prior art and one 
skilled in the art could have combined the elements as claimed by known methods with no 
change in their respective functions and the combination would have yielded predictable results. 

As per claim 35, Menezes teaches an apparatus for secure generation of a seed for use in 
performing one or more cryptographic operations, the apparatus comprising: 

wherein the seed generation server provides a first string to the seed generation 
client (page 10, key transport with challenge-response: A sends message 2 to B, which includes 
i - a; A corresponds to a server, as it responds to the request in message 1 by B, which corresponds 
to the client, with key material ta); 

the seed generation client generates a second string responsive to receipt of the f irst 
string, encrypts the second string utilizing a key, and sends the encrypted second string to the 
seed generation server (page 10, B responds with message 3 to A which includes encrypted r B ); 

the seed generation client generates the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties); and 

the seed generation server decrypts the encrypted second string and independently 
generates the seed as a function of at least the first string and the second string (page 9, use key K 
shared a priori by two parties A and B to encrypt messages; page 10, r A and r B serve as keying 
material; the session key Wis a function of inputs from both parties; thus, A must decrypt the 
message containing r B to derive the session key). 
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Menezes does not explicitly teach a processing device comprising a processor coupled to 
a memory, the processing device implementing at least one of a seed generation client and a seed 
generation server . 

However, Examiner provides OFFICIAL NOTICE that it would have been well known 
and expected in the art at the time of the invention for a client and a server to be implemented 
processing devices. It would have been obvious for one of ordinary skill in the art at the time of 
the invention to modify Menezes such that the two parties are implemented on processing 
devices, as all of the claimed elements were known in the prior art and one skilled in the art 
could have combined the elements as claimed by known methods with no change in their 
respective functions and the combination would have yielded predictable results. 

As per claim 36, Menezes teaches a non-transitory machine-readable storage medium 
containing one or more software programs for secure generation of a seed for use in performing 
one or more cryptographic operations, wherein the one or more software programs when 
executed by a processing device implement at least one of a seed generation client and seed 
generation server; 

wherein the seed generation server provides a first string to the seed generation client 
(page 10, key transport with challenge-response: A sends message 2 to B, which includes r A ; A 
corresponds to a server, as it responds to the request in message 1 by B, which corresponds to 
the client, with key material ta); 
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the seed generation client generates a second string responsive to receipt of the first 
string, encrypts the second string utilizing a key, and sends the encrypted second string to the 
seed generation server (page 10, B responds with message 3 to A which includes encrypted r B ); 

the seed generation client generates the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; 
the session key Wis a function of inputs from both parties); and 

the seed generation server decrypts the encrypted second string and independently 
generates the seed as a function of at least the first string and the second string (page 9, use key K 
shared a priori by two parties A and B to encrypt messages; page 10, r A and r B serve as keying 
material; the session key Wis a function of inputs from both parties; thus, A must decrypt the 
message containing r B to derive the session key). 

Menezes does not explicitly teach a non-transitory machine-readable storage medium 
containing one or more software programs for secure generation of a seed, wherein the one or 
more software programs when executed by a processing device implement at least one of a seed 
generation client and seed generation server. However, Examiner provides OFFICIAL NOTICE 
that it would have been well known and expected in the art at the time of the invention for one or 
more software programs when executed by a processing device to implement at a client or a 
server. It would have been obvious for one of ordinary skill in the art at the time of the invention 
to modify Menezes such that the one or more software programs when executed by a processing 
device implement the client or server, as all of the claimed elements were known in the prior art 
and one skilled in the art could have combined the elements as claimed by known methods with 
no change in their respective functions and the combination would have yielded predictable 
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results. 

As per claim 38, Menezes teaches an apparatus for secure generation of a seed for use in 
performing one or more cryptographic operations, the apparatus comprising: 
the seed generation client being configured: 

(i) to receive a first string from a seed generation server (page 10, key transport 
with challenge-response: B receives message 2 from A which includes r A ; A corresponds 
to a server, as it responds to the request in message 1 by B, which corresponds to the 
client, with key material ta); 

(ii) to generate a second string responsive to receipt of the first string, to encrypt 
the second string utilizing a key, and to send the encrypted second string to the seed 
generation server (page 10, B responds with message 3 to A which includes encrypted 
re); and 

(iii) to generate the seed as a function of at least the first string and the second 
string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties); 

wherein the first string and the second string are configured so as to permit the seed 
generation server to independently generate the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties; page 2, one type of key establishment technique is key agreement, 
where a shared secret is derived by two parties as a function of information contributed by or 
associated with each of these). 
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Menezes does not explicitly teach a processing device comprising a processor coupled to 
a memory, the processing device implementing a seed generation client . However, Examiner 
provides OFFICIAL NOTICE that it would have been well known and expected in the art at the 
time of the invention for a client to be implemented on a processing device. It would have been 
obvious for one of ordinary skill in the art at the time of the invention to modify Menezes such 
that the client is implemented on a processing device, as all of the claimed elements were known 
in the prior art and one skilled in the art could have combined the elements as claimed by known 
methods with no change in their respective functions and the combination would have yielded 
predictable results. 

As per claim 40, Menezes teaches an apparatus for secure generation of a seed for use in 
performing one or more cryptographic operations, the apparatus comprising: 
the seed generation server being configured: 

(i) to provide a first string to a seed generation client (page 10, key transport with 
challenge-response: A sends message 2 to B, which includes r A ; A corresponds to a 
server, as it responds to the request in message 1 by B, which corresponds to the client, 
with key material ta); 

(ii) to receive from the seed generation client a second string generated responsive 
to receipt of the first string and encrypted utilizing a key (page 10, A receives message 3 
from B, which includes encrypted r B ); 

(iii) to decrypt the encrypted second string : and 
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(iv) to generate the seed as a function of at least the first string and the second 
string (page 9, use key K shared a priori by two parties A and B to encrypt messages; 
page 10, r A and r B serve as keying material; the session key Wis a function of inputs from 
both parties; thus, A must decrypt the message containing r B to derive the session key); 
wherein the first string and the second string are configured so as to permit the seed 
generation client to independently generate the seed as a function of at least the first string and 
the second string (page 10, r A and r B serve as keying material; the session key Wis a function of 
inputs from both parties; page 2, one type of key establishment technique is key agreement, 
where a shared secret is derived by two parties as a function of information contributed by or 
associated with each of these). 

Menezes does not explicitly teach a processing device comprising a processor coupled to 
a memory, the processing device implementing a seed generation server . However, Examiner 
provides OFFICIAL NOTICE that it would have been well known and expected in the art at the 
time of the invention for a server to be implemented on a processing device. It would have been 
obvious for one of ordinary skill in the art at the time of the invention to modify Menezes such 
that the server is implemented on a processing device, as all of the claimed elements were known 
in the prior art and one skilled in the art could have combined the elements as claimed by known 
methods with no change in their respective functions and the combination would have yielded 
predictable results. 
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13. Claims 7 and 27-28 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Menezes as applied to claim 1 above, and further in view of Chen et al. (US Patent 5,784,463) 
(hereinafter Chen) (previously presented). 

As per claim 7, Menezes teaches the method of claim 1 as applied above. Menezes does 
not teach the method wherein the seed generation client comprises or is otherwise associated 
with an authentication token. However, Chen teaches client nodes connected to device capable of 
reading a token (column 4, lines 5-7). It would have been obvious for one of ordinary skill in the 
art at the time of the invention to modify Menezes for the client to be associated with an 
authentication token, as Chen teaches that a valid token enables a user to communicate securely 
from any location and from a variety of systems while allowing dynamic change of system 
configuration based on user entitlements (column 2, lines 38-42). 

As per claim 27, Menezes teaches the method of claim 1 as applied above. Menezes does 
not teach the method wherein the seed generation client stores the generated seed in an 
authentication token . However, Chen teaches an authentication key is stored in the authentication 
token (column 5, lines 25-27). It would have been obvious for one of ordinary skill in the art at 
the time of the invention to modify Menezes to store the generated seed in an authentication 
token, as Chen teaches that a valid token enables a user to communicate securely from any 
location and from a variety of systems while allowing dynamic change of system configuration 
based on user entitlements (column 2, lines 38-42). 
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As per claim 28, Menezes teaches the method of claim 1 as applied above. Menezes does 
not teach the method wherein the seed generation server stores the generated seed in an 
authentication entity . However, Chen teaches the server storing the generated shared secret keys 
of registered clients (column 2, lines 60-62). It would have been obvious for one of ordinary skill 
in the art at the time of the invention to modify Menezes to store the seed in an authentication 
entity, as Chen teaches doing so in order for a client to register for any application offered by the 
server (column 2, lines 57-59). 



14. Claims 9, and 29-34 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Menezes as applied to claim 1 above, and further in view of Yatsukawa (US Patent 6,148,404) 
(previously presented). 

As per claim 9, Menezes teaches the method of claim 1 as applied above. Menezes does 
not explicitly teach the method wherein the seed generation server sends an authentication code 
to the seed generation client, the authentication code proving knowledge of the generated seed 
and instructing the seed generation client to store the generated seed . 

However, Yatsukawa teaches the method wherein the client stores the generated seed 
upon receipt of an authentication code by the server (Figure 13, the client stores authentication 
data D 2 upon receiving a message of "grant" indicating the authentication processing result 
from the server). Notification of grant of the authentication request received from the 
authentication server assures that both the server's knowledge of the generated authentication 
data matches that of the client (column 13, lines 23-29). 
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It would have been obvious to one of ordinary skill in the art at the time of the invention 
to modify Menezes in order send an authentication code which proves knowledge of a generated 
seed and instructs a client to store said seed, so as to ensure that the appropriate seed is stored by 
the client. Such an authentication method would make it difficult for an unauthorized entity to 
replace the seed which was securely generated with a false seed right before it is stored. 

As per claim 29, Menezes teaches the method of claim 1 as applied above. Menezes does 
not explicitly teach the method wherein the generated seed is used to replace an existing seed 
known to both the seed generation client and the seed generation server . However, Yatsukawa 
teaches generating a seed in order to replace an existing seed known to both a client and server 
(Fig. 13, after comparison of the authentication data, the client/server stores the new seed in 
place of the old one). 

It would have been obvious for one of ordinary skill in the art at the time of the invention 
to modify Menezes to replace the existing seed with the newly generated seed, as Yatsukawa 
teaches changing the seed data and corresponding inspection data every time in order to improve 
resistance to replay attacks (column 22, lines 42-45). 

As per claim 30, Menezes in view of Yatsukawa teaches the method of claim 29 as 
applied above. Menezes in view of Yatsukawa additionally teaches the method wherein the 
generated seed is used to replace an existing seed in an authentication token associated with the 
seed generation client and in an authentication entity associated with the seed generation server 
(Yatsukawa, Fig. 13, after comparison of the authentication data, the client/server stores the new 
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seed in place of the old one). 

As per claim 31, Menezes in view of Yatsukawa teaches the method of claim 30 as 
applied above. Menezes in view of Yatsukawa additionally teaches the method wherein the 
authentication token replaces the existing seed with the generated seed after the receipt of a 
signal from the authentication entity (Yatsukawa, Abstract, upon receiving a grant from the 
server, the client stores the data as seed data in place of the first seed data). 

As per claim 32, Menezes in view of Yatsukawa teaches the method of claim 31 as 
applied above. Menezes in view of Yatsukawa additionally teaches the method wherein the 
signal from the authentication entity comprises an authentication code cryptograph ically derived 
from the seed (column 11, lines 40-43, Yatsukawa teaches enciphering seed data in order to 
generate authentication data sent from one party to another in order to provide authentication; 
Fig. 13, after comparison of the authentication data, the client/server stores the new seed in 
place of the old one). 

As per claim 33, Menezes in view of Yatsukawa teaches the method of claim 30 as 
applied above. Menezes in view of Yatsukawa additionally teaches the method wherein the 
authentication entity replaces the existing seed with the generated seed after receipt of a signal 
from the authentication token (Yatsukawa, Fig. 13; column 17, lines 24-31, the server updates 
the authentication data Di received from the client X and stores as inspection data only when the 
collation result is coincident). 
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As per claim 34, Menezes in view of Yatsukawa teaches the method of claim 33 as 
applied above. Menezes in view of Yatsukawa additionally teaches the method wherein the 
signal from the authentication token comprises an authentication code crypto graphically derived 
from the seed (column 11, lines 40-43, Yatsukawa teaches enciphering seed data in order to 
generate authentication data sent from one party to another in order to provide authentication; 
Fig. 13, after comparison of the authentication data, the client/server stores the new seed in 
place of the old one). 

15. Claim 10 is rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes in view 
of Yatsukawa as applied to claim 9 above, and further in view of Carro et al. (US Pre-Grant 
Publication 2002/0013794) (hereinafter Carro) (previously presented). 

As per claim 10, Menezes in view of Yatsukawa teaches the method of claim 9 as applied 
above. Menezes in view of Yatsukawa does not teach the method wherein the authentication 
code is cryptographically derived from a secret key shared by the seed generation client and the 
seed generation server . More specifically, Yatsukawa teaches enciphering seed data by a secret 
key (column 11, lines 40-43) in order to generate an authentication code sent from one party to 
another in order to provide authentication. The authentication code taught by Yatsukawa was 
derived from a private key of an asymmetric key pair. 

However, Carro teaches that one type of authentication code, known as a MAC, is often 
computed from a secret key shared only by the sender and receiver (paragraph [0003] ). It would 
have been obvious for one of ordinary skill in the art at the time of the invention to further 
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modify Menezes in order to cryptographically derive the authentication code from a secret key, 
rather than a private key associated with the client, as doing so ensures that "only the ones 
sharing the secret-key are able to verify the hash" (paragraph [0027] ). 

16. Claims 1 1-12 are rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes as 
applied to claim 1 above, and further in view of Kaliski, Jr. (US Pre-Grant Publication 
2001/0055388) (hereinafter Kaliski) (previously presented). 

As per claim 11, Menezes teaches the method of claim 1 as applied above. Menezes does 
not explicitly teach the method wherein the seed generation server sends the generated seed to an 
authentication entity . However, Kaliski teaches a server which comprises or is otherwise 
associated with an authentication entity (paragraph [0019] , Kaliski teaches the use of 
verification servers, which may or may not also be the servers together with a client generate a 
strong secret, which may be used as a seed). Kaliski describes verification servers which provide 
authentication of the regenerated strong secret. 

It would have been obvious to one of ordinary skill in the art at the time of the invention 
to modify Menezes in order to send a generated seed to an authentication entity, as doing so 
provides a mechanism for authentication of a generated seed created by deterministic means 
(paragraph [0019] , Kaliski describes how authentication could help determine if an 
unauthorized entity is attempting to regenerate the strong secret). An authenticated seed 
provides for a more secure seed generation and consequently key generation. In addition, in the 
case where the authentication entity may not be the same as the seed generation server, it is clear 
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that there needs to be a way for the server to send the generated seed to the authentication entity 
to perform appropriate authentication. 

As per claim 12, Menezes in view of Kaliski teaches the method of claim 1 1 as applied 
above. Menezes in view of Kaliski additionally teaches the method wherein the seed generation 
server also sends user identifying information associated with the seed to the authentication 
entity (it would have been obvious for one of ordinary skill in the art at the time of the invention 
to further modify Menezes to send user identifying information associated with the seed to the 
authentication entity, as authentication of the seed can only occur if there is an associated 
identity; Menezes, page 3, authentication defined as the process of verifying that an identity is as 
claimed). 

17. Claim 15 is rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes as 
applied to claim 1 above, and further in view of Fielder et al. (US Patent No. 5963646) 
(hereinafter Fielder) (previously presented). 

As per claim 15, Menezes teaches the method of claim 1 as applied above. Menezes does 
not teach the method wherein the seed generation server initiates the seed generation process 
responsive to receipt of a command . However, Fielder teaches generating a seed, wherein an 
activation code initiates the generation of this process (column 3, lines 22-33; column 7, lines 38- 
40). It would have been obvious for one of ordinary skill in the art at the time of the invention to 
modify the Menezes in order to initiate generation of a seed based upon receipt of a command, as 
this would allow the party that submits the command to direct the generation of the seed as 
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needed, giving an increased level of control which allows the seed generation process to be 
"automated" and efficient. 

18. Claims 17-18 are rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes as 
applied to claim 16 above, and further in view of Huima (Pre-Grant Publication 2002/0164026). 

As per claims 17 and 18, Menezes teaches the method of claim 16 as applied above. 
Menezes does not explicitly teach the method wherein the seed generation client in response to 
initiation of the seed generation process by the seed generation server provides the seed 
generation server with information indicating one or more processing algorithms suitable for use 
in the seed generation process , and wherein the seed generation server responsive to the 
information indicating one or more processing algorithms provides to the seed generation client 
additional information specifying one or more characteristics of the seed generation process . 

However, Huima teaches two parties exchanging the values of parameters (paragraph 
[0019] ) such as security parameters "used to inform the other party about available ciphers, hash 
functions etc." (paragraph [0052] ). It would have been obvious for one of ordinary skill in the 
art at the time of the invention to modify Menezes to indicate one or more processing algorithms 
used in the seed generation process, as Huima teaches that this allows for the calculation of a 
shared secret (paragraph [0019]). 

19. Claims 20-21 and 25 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Menezes as applied to claim 1 above, and further in view of Fielder, and further in view of 
Burnett et al. (2001) (hereinafter Burnett) (previously presented). 
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As per claim 20, Menezes teaches the method of claim 1 as applied above. Menezes does 
not teach the method wherein the seed is generated by repeatedly applying a cryptographic 
algorithm to successive portions of an additional string generated utilizing the first string, the 
second string and the key . 

However, Fielder teaches the method wherein the seed is generated by applying a 
cryptographic algorithm to an additional string generated utilizing the first string, the second 
string, and the key (column 3, lines 50-52, the first string, a constant value, may combined with a 
second string, the E-Key seed, through a sequence of cryptographic steps to provide an input 
(seed) to a secure hash function; column 3, lines 53-55, the E-Key seed and constant value may 
be encrypted). 

It would have been obvious for one or ordinary skill in the art at the time of the invention 
to modify Menezes in order apply a block cipher with a feedback mode by repeatedly applying 
the cryptographic algorithm to successive portions of the additional string , as Burnett teaches 
that a block cipher comprises one type of symmetric key algorithm and utilizing a feedback 
mode solves the problem of copies of ciphertext resulting from applying a block cipher, which an 
attacker might identify as a repeated pattern (pp. 40). By repeatedly applying the algorithm to 
portions of the additional string, the seed appears more random, and therefore becomes more 
resistant to attacks. 

As per claim 21, Menezes in view of Fielder and Burnett teaches the method of claim 20 
as applied above. Menezes in view of Fielder and Burnett additionally teaches the method 
wherein the additional string generated utilizing the first string, the second string and the key 
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comprises a concatenation of the first string, the second string and the key (Fielder, column 3, 
lines 49-52, a constant value, the first string, maybe combined with the E-Key seed, the second 
string, through a sequence of logic, algebraic, and/or cryptographic steps). It would have been 
obvious to one of ordinary skill in the art at the time of the invention to concatenate the first 
string, the second string, and the key prior to applying a cryptographic algorithm to the generated 
string in order to produce a seed, as concatenation is one of the simplest methods of combining 
two bit sequences. 

As per claim 25, Menezes in view of Fielder and Burnett teaches the method of claim 20 
as applied above. Menezes in view of Fielder and Burnett additionally teaches the method 
wherein the cryptographic algorithm comprises an encryption operation (Fielder, column 2, lines 
23-25, encryption algorithms are required to generate an encryption key, which may be used as 
a seed, as stated earlier). 

20. Claim 22 is rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes, in view 
of Fielder and Burnett as applied to claim 20 above, and further in view of Scheidt et al. (US 
Pre-Grant Publication 2002/0062451) (hereinafter Scheidt) (previously presented). 

As per claim 22, Menezes in view of Fielder and Burnett teaches the method of claim 20 
as applied above. Menezes in view of Fielder and Burnett does not teach the method wherein the 
additional string comprises n portions C|"ll, Cf21,... Cfnl, and the seed is generated by 
computing: 

irn - Algorithm (crn.cm) 
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ir21 - Algorithm (If 11. CHI) 



irn- 1 1 = Algorithm (irn-21, CM) 
seed = I[n-1], 

where Algorithm (A, B) denotes application of the cryptographic algorithm to portion B of the 
string utilizing an algorithm parameter denoted by A . 

However, Scheidt teaches the method wherein a working key is constructed from several 
pieces of information via a combiner function (paragraph [0056] ). This working key is used to 
initialize a symmetric key cryptographic algorithm. Scheidt teaches the working key generated 
by applying a combiner function such as Triple DES in CBC Mode (Figure 5). CBC Mode is a 
type of feedback mode. The algorithm claimed in 22 demonstrates a type of block cipher 
utilizing a type of feedback mode. It would have been obvious for one of ordinary skill in the art 
at the time of the invention that rather than using an IV as an algorithm parameter, the algorithm 
could be applied to the second portion of the string, with the first string functioning as the IV 
instead. Utilizing the first string as the first parameter eliminates the need to generate a separate 
value to be used as the IV. 

Additionally, it would have been obvious for one of ordinary skill in the art at the time of 
the invention to further modify Menezes, in order to generate a shared secret key using such an 
algorithm, as utilizing "splits," or components, in the manner taught by Scheidt to generate a 
working key, as Scheidt teaches that the combiner function "is particularly advantageous for use 
with applications that have relatively limited resources" (paragraph [0093] ). 
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21. Claims 23-24 are rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes, in 
view of Fielder and Burnett as applied to claim 20 above, and further in view of Huima. 

As per claims 23 and 24, Menezes in view of Fielder and Burnett teaches the method of 
claim 20 as applied above. Menezes in view of Fielder and Burnett does not teach the method 
wherein the cryptographic algorithm comprises a one-way cryptographic operation , and wherein 
the one-way cryptographic operation comprises a hash function . However, Huima teaches 
"different keys are derived from key material using different parametrized hash functions" 
wherein the shared secret and two nonces provide the key material (paragraph [0050] ). It would 
have been obvious for one of ordinary skill in the art at the time of the invention to further 
modify Menezes to apply a one-way hash function to the additional string generated utilizing the 
first string, the second string, and the key, as Huima teaches that hash functions are advantageous 
in providing a secure method of communication (paragraphs [0012-0014] ). 

22. Claim 26 is rejected under 35 U.S.C. 1 03(a) as being unpatentable over Menezes, in view 
of Fielder and Burnett as applied to claim 25 above, and further in view of Trimberger (US 
Patent 7,366,306). 

As per claim 26, Menezes in view of Fielder and Burnett teaches the method of claim 25 
as applied above. Menezes in view of Fielder, Burnett does not teach the method wherein the 
encryption operation comprises the AES algorithm . 

However, it would have been obvious for one of ordinary skill in the art at the time of the 
invention to further modify Menezes to utilize AES, as Trimberger teaches that AES is a more 
secure encryption algorithm (column 1, lines 36-44). 
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Conclusion 

23. Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to VIRGINIA HO whose telephone number is 571-270-7309. The 
examiner can normally be reached on Mon to Thu; 8:30 AM - 5:00 PM (Eastern). 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 



Application/Control Number: 10/549,542 Page 30 

Art Unit: 2432 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/VIRGINIA HO/ 
Examiner, Art Unit 2432 



/Minh Dinh/ 

Primary Examiner, Art Unit 2432 



